docs: mark resolved deferred items and fix media route test mock

Contentrain · claude · Contentrain · commit 42a85afd961f · 2026-04-07T16:04:58.000+03:00
Update ROADMAP.md, CLAUDE.md to reflect completed monthly limit
atomicity and GDPR audit logging fixes. Add missing
reserveStorageIfAllowed mock to media route integration test.

Co-Authored-By: Claude Opus 4.6 (1M context) &lt;noreply@anthropic.com&gt;
diff --git a/CLAUDE.md b/CLAUDE.md
@@ -204,10 +204,6 @@ Brand SVGs (GitHub, Google logos) stay as inline SVG — they need exact brand c
 
 ## Deferred TODOs
 
-High (deploy sonrası):
-- Monthly limit race condition: check+insert not atomic (forms + agent usage)
-- GDPR audit logging: no trail when form submissions are deleted
-
 Medium:
 - Mobile shell: hamburger + slide-over (button exists, handler + drawer missing)
 - Branch health: no 80+ branch threshold, no auto-delete merged cr/* branches
diff --git a/ROADMAP.md b/ROADMAP.md
@@ -1,6 +1,6 @@
 # Contentrain Studio — Roadmap
 
-> Last updated: 2026-04-03 | Current release: v0.1.0-beta.3
+> Last updated: 2026-04-07 | Current release: v0.1.0-beta.4
 
 This roadmap reflects our current priorities. Items may shift based on user feedback and production learnings.
 
@@ -34,8 +34,8 @@ Focus: production readiness, monitoring, critical fixes.
 - [ ] **Sentry integration** — Client + server error monitoring and alerting
 - [x] **Open-source docs** — Self-hosting guide, contributing guide, security policy, code of conduct, Docker/deployment docs
 - [ ] **User testing & feedback loop** — Structured beta testing with real teams
-- [ ] **Monthly limit atomicity** — Race condition: form submission + agent usage check+insert not atomic
-- [ ] **GDPR audit for deletions** — No audit trail when form submissions are hard-deleted
+- [x] **Monthly limit atomicity** — Atomic RPC functions for workspace members, CDN keys, and storage quota (migration 019)
+- [x] **GDPR audit for deletions** — Bulk delete audit logging, 4 missing audit registry entries (CDN key, conversation key, webhook, AI key)
 
 ---
 
diff --git a/tests/integration/media-routes.integration.test.ts b/tests/integration/media-routes.integration.test.ts
@@ -79,6 +79,8 @@ function stubMediaRouteGlobals() {
     requireWorkspaceRole: vi.fn().mockResolvedValue('owner'),
     getProjectForWorkspace: vi.fn().mockResolvedValue({ id: 'project-1' }),
     getWorkspaceById: vi.fn().mockResolvedValue({ plan: 'pro', media_storage_bytes: 1024 }),
+    reserveStorageIfAllowed: vi.fn().mockResolvedValue({ allowed: true, currentBytes: 1024 }),
+    incrementWorkspaceStorageBytes: vi.fn().mockResolvedValue(undefined),
     getProjectMember: vi.fn().mockResolvedValue({ id: 'pm-1', role: 'editor' }),
     getUserClient: vi.fn().mockReturnValue({}),
     getAdminClient: vi.fn().mockReturnValue({
